Reverse DNS records not registered when using DHCP

windows domain-name-system active-directory dhcp ptr-record
57,234

Solution 1

The solution is checking Use this connection's DNS suffix in DNS registration in the TCP/IP settings of the network interface:

enter image description here

As much as it may appear strange, this is the only solution to ensure Windows will register both the A and the PTR records for a DHCP network connection; otherwise, it will only register the A record.

Solution 2

I ran into the same issue years ago the following group policy settings are how I resolved it. This could easily be overkill, but since the above answers didn't cover things from a group policy angle here goes.

Computer Configuration\Administrative Templates\Network\DNS Client

  • Connection Specific DNS Suffix: enabled, and set to mydomain.org
  • Register DNS records with connection-specific DNS suffix: enabled
  • Register PTR Records: enabled
  • Dynamic Update: enabled

Solution 3

According to MS:

Windows 2000 .. sends option 81 and its fully qualified domain name to the DHCP server and requests the DHCP server to register a pointer resource record (PTR RR) on its behalf. The dynamic update client registers an address resource record (A RR). .. the DHCP server can be configured to instruct the client to allow the server to register both records with the DNS.

Statically configured (non-DHCP) clients register both the A RR and the PTR RR with the DNS server themselves.

The article also mentions Changing registry entries changes the behavior of the dynamic update DNS client. So there might be a registry workaround... Looking

Edit:
According to the article linked by TheCleaner below, the GPO I mentioned in my comment will not do what you want (yeah MS and closed-source software). But checking the boxes for "Register this connection's address in DNS" and "Use this connection's DNS suffix in DNS registration" makes it work. I don't have a convenient test environment to try it...

Share:
57,234

Related videos on Youtube

Massimo
Author by

Massimo

"Against stupidity, the Gods themselves fight in vain." https://www.linkedin.com/in/massimo-pascucci

Updated on September 18, 2022

Comments

  • Massimo
    Massimo over 1 year

    I've stumbled upon a strange behaviour with Windows machines, which seems to be fairly consistent between all Windows versions from Vista/2008 to 8.1/2012 R2; it doesn't happen instead when using Windows XP or Windows Server 2003.

    The problem is this: when the network adapter is configured for DHCP and the DHCP server doesn't register DNS records on behalf of its clients (because it can't, or because it's not configured to do so), then the forward A record gets registered, but the reverse PTR record doesn't.

    Some more details:

    • Both the forward and the reverse DNS zones are AD-integrated and accept dynamic updates.
    • All computers are joined to the domain.
    • All computers use the correct internal DNS servers, both when configured statically and when getting their configuration from DHCP.
    • "Register this connection's addresses in DNS" is enabled in the network adapters.
    • Everything is fine when a computer has a static IP address; both the forward and the reverse records get automatically registered.
    • When the same computer is configured for DHCP, the forward record is registered, but the reverse record isn't.
    • This happens for all computers with an OS version >= 6.0, and it's definitely not related to a single machine.
    • No amount of ipconfig /registerdns will change anything.
    • No errors are logged anywhere.

    Why does this happen, and how can it be fixed?

    And no, configuring the DHCP server to perform DNS registration is not an option here.

    • Philip
      Philip over 9 years
      A friend not on SF said: "That's normal, PTR is only updated by DHCP in Win2K+". That doesn't exactly seem to be the case from your experience, but might be close.... I'm trying to dig up a better reference.
    • kralyk
      kralyk over 9 years
      Massimo, are you able to pull a wireshark trace and check the DHCPREQUEST Packet? There should be a flag set to "1" if the client is supposed to update both the A record and PTR record. A flag of "0" means the client updates the A record and requests that the server update the PTR record on its behalf. Default is "0".
    • kralyk
      kralyk over 9 years
      Also in the DHCP scope make sure == Click the DNS tab, click Properties, and then click to select the Dynamically update DNS A and PTR records only if requested by the DHCP clients check box == is set. This would mean when the default flag of "0" comes in the server will then try to register the PTR record with the DNS server(s) it is configured to update. And make sure the DNS dynamic update credentials are correct and appropriate permissions are applied for this to work
    • Massimo
      Massimo over 9 years
      As I said in the question, configuring the DHCP server is not an option. I don't manage it. It won't register DNS records for its clients, period. They should be able to handle it, since all of them are domain members.
    • Corey
      Corey over 9 years
      I have the same issue. Using pfSense as DHCP server. Win2k8 DC/DNS. Win7 clients. The clients are registering A records, but not PTR records.
    • strongline
      strongline over 8 years
      not an answer to OP's question per se, just an opinion of mine: I'd rather have auto PTR registering disabled. Rarely any app needs reverse lookup to function (there are a few exceptions of course, and all for servers. Workstation should NEVER need PTR record). Enabling PTR increases DNS servers' work load for no purpose really. And also it increase the chances of having orphaned PTRs when machines are gone - people tend to forget to clean up PTR.
  • kralyk
    kralyk over 9 years
  • Massimo
    Massimo over 9 years
    The GPO doesn't change anything, but enabling "Use this connection's DNS suffix in DNS registration" actually did the trick. Please rewrite your answer to explicitly state this, and I'll accept it.
  • sipher_z
    sipher_z almost 9 years
    It's interesting the GPO doesn't change anything. The context-help docs say explicitly that the checkbox only works if the associated GPO policy is disabled or unspecified.
  • Massimo
    Massimo over 8 years
    As I said in the question, in this scenario I have no control on the DHCP server.
  • Massimo
    Massimo over 8 years
    Interesting. I had already tried "Register PTR Records" to no effect, but "Register DNS records with connection-specific DNS suffix" could actually do the trick, because it indeed does when manually enabling this option in the network connection properties (see the accepted answer).
  • Tim Brigham
    Tim Brigham over 8 years
    @Massimo yeah thats inline with what I saw. I needed a way to push this out so I kept playing with the policy until it worked.
  • Massimo
    Massimo over 8 years
    Not relevant at all. If this was the case, DNS registration would fail even when using a static IP address.
  • Corey
    Corey almost 6 years
    I just ran into this again myself, seems like a bug to me. Would be nice if MS would fix.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Group Policy to Specify DNS Servers in DHCP Environment - Good or Bad?
How to get netplan on 17.10 server to work with a Windows Server DHCP server using MAC address reservations?
How to assign a static IP to a Computer in Active Directory
Broken DNS delegation
Group Policy for DNS Server Addresses
Cannot Join Client Computer to Server Domain (Windows Server 2012 r2)?
Windows Server 2008 Domain alias for users to log on to?
Windows Cannot View Domain Location
Windows AD DNS: Event ID 5504
Transitioning to new Server 2008 R2 Domain from Server 2003 -> Do I move DHCP or DNS first?